[Bug 63644] pinentry-qt character length limitation

Ingo Klöcker kloecker@kde.org
Mon Sep 8 02:17:02 2003


--Boundary-02=_4q8W/rdJdO0sQgd
Content-Type: text/plain;
  charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline

The "secure" memory handling in pinentry-qt is a really bad hack and=20
leads to crashes (which are actually "out of memory" failures) under=20
certain circumstances. For example depends the number of characters one=20
can enter before pinentry-qt runs out of memory on the widget style=20
that is used. IMO the only way to fix this is to not store the password=20
in a QString. Instead pinentry-qt has to store the password in a char*=20
because then this instable "secure" memory hack (which works around=20
QString features) is superfluous.

--Boundary-02=_4q8W/rdJdO0sQgd
Content-Type: application/pgp-signature
Content-Description: signature

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.2-rc1-SuSE (GNU/Linux)

iD8DBQA/W8q4GnR+RTDgudgRAtreAJ9IkBQrftSA/mOdHb0H6TQAWSTMZACfR1RL
7DFnwt5fs/lXyKQERL6zbDc=
=u3vR
-----END PGP SIGNATURE-----

--Boundary-02=_4q8W/rdJdO0sQgd--